FsIso.exe
- File Path:
C:\WINDOWS\system32\FsIso.exe
- Description: Secure Frame Server Helper
Hashes
| Type |
Hash |
| MD5 |
3EB98D7E0A9DB61384FD75235FAC294E |
| SHA1 |
A115E5307BE7A2D4A204C42FA1000AE4767006CD |
| SHA256 |
F083DF127E9C51BF546182CE36BCED63A535C908373E15E9B108D187C7783981 |
| SHA384 |
1189E4C4CC31C55D404EB3EBA7BA025538DC3B24FC25F69F6968F55529876ABE69F63BF8D6AF2F3A27AAA7C37A01CAC3 |
| SHA512 |
B020054F6A115F41C9DA7FBDC7BEFD78FEFE5DCC5DD977858F146F42B86C3C0C6DB2DB5FF89A2586F9C20E057640C21CF40A0203236069157DE03CDD2EE7D087 |
| SSDEEP |
1536:lfkqRqlaVE9WRJ/IIYNpoMBhnK/gTvglFLGJ3u9eT7/FBfDHCUtg+eNjPN:lNg4MHnKcuFUe9ifiUrEjV |
| IMP |
AE3F6EA4A75C2C488F0816F6B35BB5D0 |
| PESHA1 |
3AA3F925A9D5EA92B795CE9E6110D6EA113E5975 |
| PE256 |
2182C0797E1E7C2CCE467498368E4EB6EA932CCF570929A665EA477CB18927D5 |
Runtime Data
Open Handles:
| Path |
Type |
| (RW-) C:\Windows\System32 |
File |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000001.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000001.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2.ro |
Section |
| \Sessions\2\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 |
Section |
| \Sessions\2\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 |
Section |
Loaded Modules:
| Path |
| C:\WINDOWS\system32\FsIso.exe |
| C:\WINDOWS\System32\KERNEL32.DLL |
| C:\WINDOWS\System32\KERNELBASE.dll |
| C:\WINDOWS\SYSTEM32\ntdll.dll |
Signature
- Status: Signature verified.
- Serial:
33000002ED2C45E4C145CF48440000000002ED
- Thumbprint:
312860D2047EB81F8F58C29FF19ECDB4C634CF6A
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: FsIso.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.22000.65 (WinBuild.160101.0800)
- Product Version: 10.0.22000.65
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/72
- VirusTotal Link: https://www.virustotal.com/gui/file/f083df127e9c51bf546182ce36bced63a535c908373e15e9b108d187c7783981/detection
MIT License. Copyright (c) 2020-2021 Strontic.